|
|
|||
| Rule General Information |
|---|
| Release Date: | 2017-09-04 | |
| Rule Name: | JasPer jp2_decode Out of Bounds Read Vulnerability (CVE-2017-9782) | |
| Severity: | ||
| CVE ID: | ||
| Rule Protection Details |
|---|
| Description: | An out-of-bounds array indexing vulnerability has been reported in JasPer. JasPer 2.0.12 allows remote attackers to cause a denial of service (heap-based buffer over-read and application crash) via a crafted image, related to the jp2_decode function in libjasper/jp2/jp2_dec.c. | |
| Impact: | An attacker can execute arbitrary code via a successful exploit in the context of the vulnerable software. | |
| Affected OS: | Windows, Mac OS, Linux | |
| Reference: | CVE-2017-9782 |
|
| Solutions |
|---|
| Update vendor's patch. |